Splunk Search

Community Activity

reading from a repsitory hi if i have my datainputs stored in a repository how can i index those files to my splunk instance automatically,i.e... by smolcj Builder in Splunk Search 01-09-2013 0 3	0	3
Default span size change? Is it possible to adjust the default span size for a given time-range? When using timechart the default span size wo... by unclethan Path Finder in Splunk Search 01-08-2013 0 1	0	1
Custom icon in table I have a table that looks like this: My customer wants the table to look like this: Any ideas? I've looked into ... by kmattern Builder in Splunk Search 01-08-2013 1 9	1	9
Averaging Transaction Length by Operation, Excluding Outliers I can get the average duration of each of our operations with the following query: * \| transaction transactionId \| s... by Adam Explorer in Splunk Search 01-08-2013 0 2	0	2
CSV Lookup File From Share Is it possible to set Splunk to read a lookup from a CSV file on a different machine? We have a shared directory inte... by paddy3883 Path Finder in Splunk Search 01-08-2013 0 4	0	4
Help extracting fields I have a syslog input that has its field values in the following format and splunk isn't picking it up by default. H... by rmcdougal Path Finder in Splunk Search 01-08-2013 0 2	0	2
How to "pipe" output to another search command from the Splunk CLI in Windows? I'm trying to execute some queries from the Command Line on a Windows Splunk server. As long as I don't use the "pip... by williamche Path Finder in Splunk Search 01-08-2013 1 4	1	4
Regex merge match to single name HI I have 2 log files(access log file and custom log file) with data as given below. LogFile1 (access log) GET /logi... by webshan Engager in Splunk Search 01-08-2013 0 2	0	2
Sequential file processing Hi Team, Have an scenario, lets say in first 12 hours i get some 1000 sales files and i index then and in second 12 h... by pramodkumar Path Finder in Splunk Search 01-08-2013 0 3	0	3
Splunk.Module.Search Context failed to dispatch job for search XXXX Hello, I have a dashboard where I do several search/ display and randomly I have the error given in the title so I w... by guilhem Contributor in Splunk Search 01-08-2013 0 4	0	4
how can i save a shedule search? Hi Can you help me in a saving a schedule search that runs for every 15 seconds .. how can i do it ? i have seen tha... by rakesh_498115 Motivator in Splunk Search 01-07-2013 0 3	0	3
Update a single field in lookup table from a search Fellow Splunkers, I've got an automatic lookup table (lookup.csv) which has a field in called Count. Every time my s... by watsm10 Communicator in Splunk Search 01-07-2013 0 4	0	4
timechart question In the timechart docs, the following example was provided: sourcetype=access_* \| timechart count(eval(method="GET"))... by dbautist Explorer in Splunk Search 01-07-2013 0 2	0	2
Issues with Lookup In Alert I've created an lookup (lookuptest) from a CSV file which has three values per row e.g. Filter,Limit,Timing VALUE1... by paddy3883 Path Finder in Splunk Search 01-07-2013 1 4	1	4
Sending mail to gmail or other account Hi, My scenario is to send reports to clients to their personal mail id's like gmail, but how to know the server name... by pramodkumar Path Finder in Splunk Search 01-07-2013 0 1	0	1
Top 10 Event Counts with date/time of last event Guys, Im looking to figure out a way to determine when the last event happened in a top ten report. For example: 5... by mmester Explorer in Splunk Search 01-06-2013 0 2	0	2
What if tail -f option is enabled Hi, What specifically the tail -f option do, in which scenario it works perfect. Please any example would be great.. by pramodkumar Path Finder in Splunk Search 01-05-2013 0 4	0	4
Why is everything "No results found" in Web Intelligence Beta? Am trying to index web logs from an intranet site, so I did the setup for Web Intelligence as follows: sourcetype... by mikeely Path Finder in Splunk Search 01-05-2013 2 8	2	8
Regex not appearing to work I'm having some issues with using regex to define the host of some events from an ASA. The events are in the format ... by mhale1982 Path Finder in Splunk Search 01-04-2013 1 8	1	8
How do we standardize configs across thousands of servers? It does not appear that there's any way to do host templating. We have 1000s of servers, many of which are based off... by Dimitri_McKay Splunk Employee in Splunk Search 01-04-2013 0 2	0	2
Splunk DB Connect - Tail only from latest value in database? Still trying to get the tail monitor working. It seems that once it's enabled and scheduled, then executed, the firs... by falkyre Explorer in Splunk Search 01-04-2013 1 1	1	1
Does charting data age out over time? Does the charting data "age" like RRD data (as an example: a 5 minute sample rate gets turned into a 15 minute averag... by Dimitri_McKay Splunk Employee in Splunk Search 01-04-2013 0 1	0	1
Is it possible to add labels to values in a results table? Is there any way to tack labels, like units of measure, onto values in a table of results, similar to how it can be d... by DaClyde Contributor in Splunk Search 01-04-2013 0 3	0	3
SimpleResultsTable in HiddenPostProcess can not work Hi, I want to create a dashboard with 4 tables. I used a hidden search with 4 hiddenpostprocess(s). But all 4 tables... by dianbo_1 Path Finder in Splunk Search 01-04-2013 2 5	2	5
I disabled global metadata on some indexers and now my indexing queue is blocked. Why? We upgraded from 4.2 to 4.3.5 because we had a sources.data that was many GB in size. To resolve this, we tried to up... by DerekB Splunk Employee in Splunk Search 01-04-2013 9 1	9	1